$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft File: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft (raw, json) Hash identifier: Vc0mOXam6RXjRanXNglnejrCjIk/+esM7p5e53p0qbs= Subject key identifier: 3B:F4:40:40:1E:45:D1:35:4D:A4:5A:31:B9:A4:89:63:F8:97:54:75 Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 335CB8D2EC2B5618983E7B0B7F168F465E62C5AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft Manifest number: 1051 Signing time: Mon 30 Jun 2025 18:37:42 +0000 Manifest this update: Mon 30 Jun 2025 18:32:42 +0000 Manifest next update: Tue 01 Jul 2025 21:13:42 +0000 Files and hashes: 1: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl (hash: F6nd0k/H7m9QLGYVSSN7C1d1d6vtbJVHfPC7dGCXfgI=) Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 21:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:5c:b8:d2:ec:2b:56:18:98:3e:7b:0b:7f:16:8f:46:5e:62:c5:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: Jun 30 18:32:42 2025 GMT Not After : Jul 1 21:13:42 2025 GMT Subject: CN=3BF440401E45D1354DA45A31B9A48963F8975475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5e:02:3a:c7:5a:57:ac:cd:f2:80:6a:f5:b1: ec:0c:fb:34:74:ce:58:17:dd:5c:a9:80:b5:6e:b8: f8:8c:85:e9:62:59:c3:15:67:be:f9:50:ef:99:f7: d2:9c:2f:fa:be:c1:ee:28:f4:43:10:5d:c5:40:d6: fd:a0:58:c0:92:6d:3e:f4:d4:7c:f7:49:6b:c8:51: 20:df:d9:f7:73:a0:a2:11:9f:ff:7c:5c:5c:43:03: b1:1e:ac:fe:ae:e9:4a:0c:3a:56:dd:8d:69:f9:f0: 8f:5a:63:d1:8f:fa:34:83:4b:c0:0d:9c:52:7e:64: 30:ea:87:78:32:98:89:40:a8:6f:8a:f9:a6:7c:93: 70:74:74:53:db:76:90:e0:8d:73:42:23:95:72:cb: 8e:1b:ad:a1:f3:eb:23:15:0f:a1:ae:f0:66:a7:86: e1:6c:c7:ba:8f:8f:38:f3:e9:b4:c3:8a:1b:2e:41: 73:7c:e9:fa:0f:8d:5d:0a:d3:32:f6:aa:fb:29:ee: 92:ee:10:cb:76:ab:9e:eb:fa:88:d4:27:72:3f:f5: 17:b4:f4:75:73:4e:e0:2b:2e:5f:fb:50:e6:cb:82: 91:c4:9b:39:ae:af:d1:7a:ce:5f:5b:ec:01:e1:ae: 1a:a0:05:5e:c9:1e:9c:e6:c2:7f:df:0c:52:bc:fa: be:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F4:40:40:1E:45:D1:35:4D:A4:5A:31:B9:A4:89:63:F8:97:54:75 X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:30:87:6e:8a:ad:6b:7c:ba:1b:45:ac:01:a9:75:33:89:8f: 9c:16:0c:6c:4d:82:ee:7c:a9:bb:23:34:18:41:9d:d5:e6:4b: e9:d4:ed:14:35:a2:9f:02:54:e1:fe:7a:8b:b0:01:e9:ab:f9: 10:06:19:8c:2f:a7:0f:59:6f:37:16:d5:f0:b9:82:b7:d4:7d: 77:83:72:73:7b:53:52:5a:e6:12:fb:11:a9:da:94:7f:f9:a3: 36:87:93:ab:d8:38:38:fa:c6:1a:e2:c8:1c:12:19:29:7b:a7: b5:a8:19:57:7e:e3:d4:3c:ce:f1:b4:09:ae:de:4f:4a:d1:94: 83:3f:0b:9f:b6:6d:bc:7b:2e:ed:f7:4d:b1:0b:f0:dc:77:ac: f7:f8:dd:1b:16:21:42:4a:78:0f:ea:44:71:79:7e:07:de:4b: 7b:d6:3c:28:96:01:92:92:e0:3c:99:b6:88:b5:2d:ab:bc:3a: df:85:a5:b9:ae:7c:1f:fb:7b:bf:5d:8a:94:9d:7b:92:33:e2: 42:58:b4:ee:8a:dc:36:01:7e:40:71:d3:77:a9:af:b7:64:67: a2:99:70:05:17:89:91:ca:8c:be:e8:c7:88:c9:7a:45:81:18: 07:6e:1c:d4:d8:b4:8b:8d:7f:a9:36:d3:3c:7e:90:33:75:f0: 16:de:d3:ab -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUM1y40uwrVhiYPnsLfxaPRl5ixa0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDYzMDE4MzI0MloX DTI1MDcwMTIxMTM0MlowMzExMC8GA1UEAxMoM0JGNDQwNDAxRTQ1RDEzNTREQTQ1 QTMxQjlBNDg5NjNGODk3NTQ3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMteAjrHWleszfKAavWx7Az7NHTOWBfdXKmAtW64+IyF6WJZwxVnvvlQ75n3 0pwv+r7B7ij0QxBdxUDW/aBYwJJtPvTUfPdJa8hRIN/Z93OgohGf/3xcXEMDsR6s /q7pSgw6Vt2Nafnwj1pj0Y/6NINLwA2cUn5kMOqHeDKYiUCob4r5pnyTcHR0U9t2 kOCNc0IjlXLLjhutofPrIxUPoa7wZqeG4WzHuo+POPPptMOKGy5Bc3zp+g+NXQrT Mvaq+ynuku4Qy3arnuv6iNQncj/1F7T0dXNO4CsuX/tQ5suCkcSbOa6v0XrOX1vs AeGuGqAFXskenObCf98MUrz6vjkCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBQ79EBA HkXRNU2kWjG5pIlj+JdUdTAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEy MTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASTCHboqta3y6G0Ws Aal1M4mPnBYMbE2C7nypuyM0GEGd1eZL6dTtFDWinwJU4f56i7AB6av5EAYZjC+n D1lvNxbV8LmCt9R9d4Nyc3tTUlrmEvsRqdqUf/mjNoeTq9g4OPrGGuLIHBIZKXun tagZV37j1DzO8bQJrt5PStGUgz8Ln7ZtvHsu7fdNsQvw3Hes9/jdGxYhQkp4D+pE cXl+B95Le9Y8KJYBkpLgPJm2iLUtq7w634Wlua58H/t7v12KlJ17kjPiQli07orc NgF+QHHTd6mvt2RnoplwBReJkcqMvujHiMl6RYEYB24c1Ni0i41/qTbTPH6QM3Xw Ft7Tqw== -----END CERTIFICATE-----Generated at Tue Jul 1 05:01:06 2025 by rpki-client